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IN THE CLAIMS 

1. (Currently Amended) An information playback device 
for playing back information from a recording medium having 
encrypted content recorded thereon by a content recording 
entity, the information playback device comprising: 

a cryptosystem unit operable to determine the validity 
of a public key certificate of the content recording entity, to 
acquire a public key of the content recording entity from the 
public key certificate if the public key certificate is valid, 
and to decrypt the encrypted content if the validity of a 
digital signature of the content recording entity is verified 
based on the acquired public key; 

whereby the device corresponds to a leaf of a key-tree 
structure, said key-tree structure including a plurality of 
nodes and a plurality of leaves, said plurality of nodes 
including a root node, and each of said nodes and each of said 
leaves corresponding to a respective encryption key; and 

whereby decryption by the device of said encrypted 
content is selectively inhibited by changing all efte — e-*^ — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to the device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

2. (Original) An information playback device according 
to Claim 1, wherein the digital signature of the content 
recording entity is generated by digitally signing the encrypted 
content, and the cryptosystem unit decrypts the encrypted 
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content if the validity of the generated digital signature is 
verified . 

3. (Original) An information playback device according 
to Claim 1, wherein the digital signature of the content 
recording entity is generated by digitally signing a title key 
which corresponds to the encrypted content, and the cryptosystem 
unit decrypts the encrypted content if the validity of the 
generated digital signature is verified. 

4. (Previously Presented) An information playback 
device according to Claim 1, wherein the cryptosystem unit is 
operable to acquire decryption-key-generating data required for 
decrypting the encrypted content by decrypting an enabling key 
block composed of data generated by using each key on the node 
path to encrypt a next adjacent upper key on the node path. 

5. (Original) An information playback device according 
to Claim 4, wherein the decryption-key-generating data is a 
master key common to the plurality of different information 
playback devices or a media key unique to the recording medium. 

6. (Currently Amended) An information recording device 
for recording information on a recording medium, the information 
recording device comprising: 

a cryptosystem unit operable to encrypt content 
recorded on the recording medium by a content recording entity, 
to generate a digital signature of the content recording entity, 
and to record the encrypted content, the digital signature, and 
a public key certificate of the content recording entity on the 
recording medium so as to correspond to one another^. 
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whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves correspondi^ng to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all ene — e^^ — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

7. (Original) An information recording device 
according to Claim 6, further comprising: 

a processing unit operable to generate a management 
table having correspondences among addresses of the encrypted 
content, the digital signature, and the public key certificate, 
and to record the management table on the recording medium. 

8. (Original) An information recording device 
according to Claim 6, wherein the cryptosystem unit is operable 
to generate the digital signature of the content recording 
entity by digitally signing the encrypted content, and to record 
the generated digital signature in association with the 
encrypted content . 

9. (Original) An information recording device 
according to Claim 6, wherein the cryptosystem unit is operable 

4 



Application No.: 10/075,016 



Docket No.: SONYJP 3.0-239 



to generate the digital signature of the content recording 
entity by digitally signing a title key which corresponds to the 
encrypted content, and to record the generated digital signature 
in association with the encrypted content. 

10. (Previously Presented) An information recording 
device according to Claim 6, wherein the cryptosystem unit is 
operable to acquire encryption-key-generating data required for 
encrypting the content recorded on the recording medium by 
decrypting an enabling key block composed of data generated by 
using each key in the node path to encrypt a next adjacent upper 
key on the node path. 

11. (Original) An information recording device 
according to Claim 10, wherein the encryption-key-generating 
data is a master key common to the plurality of different 
information playback devices or a media key unique to the 
recording medium. 

12. (Currently Amended) A method for playing back 
information from a recording medium having encrypted content 
recorded thereon by a content recording entity, the method 
comprising : 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 

verifying the validity of a digital signature of the 
content recording entity based on the acquired public key; and 
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decrypting the encrypted content if the validity of 
the digital signature is verified; 

whereby the method is implemented on a device for 
playing back information from the recording medium and the 
device corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all e^e — — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

13. (Original) An information playback method 
according to Claim 12, further comprising: 

generating the digital signature of the content 
recording entity by digitally signing the encrypted content, 
wherein the step of verifying the validity of the digital 
signature includes verifying the validity of the generated 
digital signature . 

14. (Original) An information playback method 
according to Claim 12, further comprising: 
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generating the digital signature of the content 
recording entity by digitally signing a title key which 
corresponds to the encrypted content, wherein the step of 
verifying the validity of the digital signature includes 
verifying the validity of the generated digital signature. 

15- (Previously Presented) An information playback 
method according to Claim 12, further comprising: 

acquiring decryption-key-generating data required for 
decrypting the encrypted content by decrypting an enabling key 
block composed of the key data. 

16. (Currently Amended) A method for recording 
information on a recording medium, comprising: 

encrypting content recorded on the recording medium 
by a content recording entity; 

generating a digital signature of the content 
recording entity; and 

recording the encrypted content, the digital 
signature, and a public key certificate of the content recording 
entity on the recording medium so as to correspond to one 
another; 

whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 
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whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all e^e — — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

17. (Original) An information recording method 
according to Claim 16, further comprising: 

generating a management table having correspondences 
among addresses of the encrypted content, the digital signature, 
and the public key certificate; and 

recording the management table on the recording 

medium. 

18. (Original) An information recording method 
according to Claim 16, further comprising 

generating the digital signature of the content 
recording entity by digitally signing the encrypted content; and 

recording the generated digital signature on the 
recording medium in association with the encrypted content. 

19. (Original) An information recording method 
according to Claim 16, further comprising: 

generating the digital signature of the content 
recording entity by digitally signing a title key which 
corresponds to the encrypted content; and 
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recording the generated digital signature on the 
recording medium in association with the encrypted content. 

20. (Previously Presented) An information recording 
method according to Claim 16, further comprising: 

acquiring encryption-key-generating data required for 
encrypting the content recorded on the recording medium by 
decrypting an enabling key block composed of the key data. 

21. (Currently Amended) A computer-readable medium, 
comprising: 

encrypted content recorded thereon by a content 
recording entity; 

identification data for identifying the content 
recording entity; 

a public key certificate of the content recording 
entity; and 

a digital signature of the content recording entity; 

whereby the medium is operable with a device that 
corresponds to a leaf of a key-tree structure, said key-tree 
structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all efte — e^e — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
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a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

22. (Original) An information recording medium 
according to Claim 21, further comprising: 

a management table having correspondences among 
addresses of the encrypted content, the digital signature, and 
the public key certificate. 

23. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for playing back information from a recording 
medium having encrypted content recorded thereon by a content 
recording entity, the computer program comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 

verifying the validity of a digital signature of the 
content recording entity based on the acquired public key; and 

decrypting the encrypted content if the validity of 
the digital signature is verified; 

whereby the computer system corresponds to a leaf of a 
key-tree structure, said key-tree structure including a 
plurality of nodes and a plurality of leaves, said plurality of 
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nodes including a root node, and each of said nodes and each of 
said leaves corresponding to a respective encryption key; and 

whereby decryption by ' the computer system of said 
encrypted content is selectively inhibited by changing all e^e 
— more keys corresponding to nodes included in a node path 
between said leaf corresponding to the computer system and said 
root node to generate a plurality of changed keys, said changed 
keys being propagated through said key-tree structure by 
encrypting each changed key according to a lower-level changed 
key and encrypting the lowest-level changed key according to a 
leaf key other than the computer system^ s leaf key . 

24. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for recording information on a recording 
medium, the computer program comprising: 

encrypting content recorded on the recording medium 
by a content recording entity; 

generating a digital signature of the content 
recording entity; and 

recording the encrypted content, the digital 
signature, and a public key certificate, of the content recording 
entity on the recording medium so as to correspond to one 
another; 

whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
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of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all efte — — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

25. (Currently Amended) An information playback device 
for playing back information from a recording medium having 
encrypted content recorded thereon by a content recording 
entity, the information playback device comprising: 

a cryptosystem unit operable to. acquire from the 
recording medium identification data representing the content 
recording entity, to determine a revocation state of the content 
recording entity based on the acquired identification data, and 
to decrypt the encrypted content if the content recording entity 
has not been revoked; 

whereby the device corresponds to a leaf of a key-tree 
structure, said key-tree structure including a plurality of 
nodes and a plurality of leaves, said plurality of nodes 
including a root node, and each of said nodes and each of said 
leaves corresponding to a respective encryption key; and 

whereby decryption by the device of said encrypted 
content is selectively inhibited by changing all ef=ie — e^^ — more 
keys corresponding to nodes included in a node path between said 
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leaf corresponding to the device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

26. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public key certificate is valid, and to determine whether the 
content recording entity has been revoked based on the 
identifying data, 

27. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to decrypt the encrypted content if the validity of a digital 
signature of the content recording entity is verified. 

28. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire a public key of the content 
recording entity from the public key certificate if the public 
key certificate is valid, and to decrypt the encrypted content 
if the validity of a digital signature of the content recording 
entity is verified based on the public key. 

29. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a digital signature of the content 
recording entity generated by digitally signing the encrypted 
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content, and to decrypt the encrypted content if the digital 
signature is valid. 

30. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a digital signature of the content 
recording entity generated by digitally signing a title key 
corresponding to the encrypted content, and to decrypt the 
encrypted content if the digital signature is valid. 

31. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public certificate is valid, and to determine whether the 
content recording entity has been revoked based on a comparison 
between the identifying data and an identification stored in a 
revocation list. 

32. (Previously Presented) An information playback 
device according to Claim 25, wherein the cryptosystem unit is 
operable to determine the validity of a public key certificate 
of the content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public key certificate is valid, and to determine whether the 
content recording entity has been revoked by executing a 
process, based on the identifying data, of following the indices 
of an enabling key block composed of data generated by using 
each of the keys on a selected path to encrypt a next adjacent 
upper key on the selected path. 

33. (Previously Presented) An information playback 
device according to Claim 25, wherein the cryptosystem unit is 
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operable to acquire decryption-key-generating data required for 
decrypting the encrypted content by decrypting— an enabling key 
block composed of data generated by using each of the keys on 
the node path to encrypt a next adjacent upper key on the node 
path • 

34. (Original) An information playback device 
according to Claim 33, wherein the decryption-key-generating 
data is a master key common to the plurality of different 
information playback devices or a media key unique to the 
recording medium. 

35. (Currently Amended) A method for playing back 
information from a recording medium having encrypted content 
recorded thereon by a content recording entity, the method 
comprising : 

acquiring from the recording medium identification 
data representing the content recording entity; 

determining a revocation state of the content 
recording entity based on the acquired identification data; and 

decrypting the encrypted content if the content 
recording entity has not been revoked; 

whereby the method is implemented on a device for 
playing back information from the recording medium and said 
device corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 
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whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all eft« — &^ — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device^ s leaf key . 

36. (Original) An information playback method 
according to Claim 35, further comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acguiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 

determining whether the content recording entity has 
been revoked based on the identifying data. 

37. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity; and 

decrypting the encrypted content if the validity of 
the digital signature is verified. 

38. (Original) An information playback method 
according to Claim 35, further comprising: 
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determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 

verifying the validity of a digital signature of the 
content recording entity based on the public key; and 

decrypting the encrypted content if the validity of 
the digital signature is verified. 

39. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity generated by digitally signing the 
encrypted content; and 

decrypting the encrypted content if the digital 
signature is valid. 

40. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity generated by digitally signing a title 
key corresponding to the encrypted content; and 

decrypting the encrypted content if the digital 
signature is valid. 

41. (Original) An information playback method 
according to Claim 35, further comprising: 
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determining the validity of a public key certificate 
of the content recording entity; 

acquiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 

determining whether the content recording entity has 
been revoked based on a comparison between the identifying data 
and an identification stored in a revocation list. 

42. (Previously Presented) An information playback 
method according to Claim 35, further comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 

determining whether the content recording device has 
been revoked by executing a process, based on the identifying 
data, of following the indices of an enabling key block composed 
of data generated by using each of the keys on a selected path 
to encrypt a next adjacent upper key on the selected path. 

43. (Previously Presented) An information playback 
method according to Claim 35, further comprising: 

acquiring decryption-key-generating data for 

decrypting the encrypted content by decrypting an enabling key 
block. 
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44. (Currently Amended) A computer-readable medium, 
comprising : 

encrypted content recorded thereon by a content 
recording entity; 

a public key certificate for the content recording 

entity; 

a digital signature of the content recording entity; 

and 

a revocation list; 

whereby the medium is operable with a device that 
corresponds to a leaf of a key-tree structure, said key-tree 
structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing all ofte — &^ — more 
keys corresponding to nodes included in a node path between said 
leaf corresponding to said device and said root node to generate 
a plurality of changed keys, said changed keys being propagated 
through said key-tree structure by encrypting each changed key 
according to a lower-level changed key and encrypting the 
lowest-level changed key according to a leaf key other than the 
device's leaf key . 

45. (Original) An information recording medium 
according to Claim 44, further comprising: 
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a management table having correspondences among 
addresses of the encrypted content, the digital signature, and 
the public key certificate. 

46. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for playing back information from a recording 
medium having encrypted content recorded thereon by a content 
recording entity, the computer program comprising: 

acquiring from the recording medium identification 
data representing the content recording entity; 

determining a revocation state of the content 
recording entity based on the acquired identification data; and 

decrypting the encrypted content if the content 
recording entity has not been revoked; 

whereby the computer system corresponds to a leaf of a 
key-tree structure, said key-tree structure including a 
plurality of nodes and a plurality of leaves, said plurality of 
nodes including a root node, and each of said nodes and each of 
said leaves corresponding to a respective encryption key; and 

whereby decryption by the computer system of said 
encrypted content is selectively inhibited by changing all efte 
— more keys corresponding to nodes included in a node path 
between said leaf corresponding to the computer system and said 
root node to generate a plurality of changed keys, said changed 
keys being propagated through said key-tree structure by 
encrypting each changed key according to a lower-level changed 
key and encrypting the lowest-level changed key according to a 
leaf key other than the computer system^ s leaf key . 
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